Bayt.com
Mahpara Amil, Information Security Manager

Mahpara Amil

Information Security Manager

Payactiv SDS-IT

Location
Pakistan - Rawalpindi
Education
Master's degree, Master's Program Cyber Security Expert (Cyber
Experience
4 years, 1 Months

Share My Profile

Block User


Work Experience

Total years of experience :4 years, 1 Months

Information Security Manager at Payactiv SDS-IT
  • Pakistan - Islamabad
  • My current job since November 2020

• Develop and implement governance frameworks, including ISO27001, SOC2, and PCI DSS, covering various aspects such as Enterprise Risk Management, Compliance, and Document/Record Management.
• Provide assistance to the Manager & CISO in order to elevate the effectiveness of Governance, risk management, and Compliance Management Systems.
• Continuously monitor, measure, analyze, and enhance the performance of departmental activities and projects related to GRC.
• Assist the sales department in addressing security-related inquiries in RFI/RFPs.
• Address challenges, develop strategic roadmaps, and deliver sustainable solutions to improve GRC processes and systems.
• Monitored, reported, and remediated internal and external issues related to ISMS, implementing corrective action plans.
• Initiate regular reviews and assessments as part of the continuous improvement cycle for all departmental projects and processes.
• Collaborate with relevant entities to improve the efficiency and effectiveness of Governance.
• Participated in change management sessions during sprint deployment.
• Maintain documentation for Business Continuity Plans.
• Oversee the Top Corporate Risks Program, working closely with initiative sponsors and owners to identify, assess, and execute risk-related initiatives effectively.
• Updated risk assessment register annually or with major changes.
• Support information security awareness training efforts within the company.
• Defined, reviewed, and edited information security policies based on compliance standards and conditions.
• Generated and managed internal audit reports, facilitating process improvements in collaboration with stakeholders.
• Possess knowledge about Data Privacy regulations such as GDPR and CCPA.
• Creation of pertinent Key Performance Indicators (KPIs) for Governance, Risk, and Compliance (GRC) and the establishment of reporting protocols.

Data Analyst at Youcan.Tech
  • Pakistan - Rawalpindi
  • October 2020 to November 2020
Junior Dot Net Developer at Tutoria.pk
  • Pakistan - Islamabad
  • June 2019 to December 2019

Education

Master's degree, Master's Program Cyber Security Expert (Cyber
  • at Simplilearn
  • July 2023
Bachelor's degree, Bachelor of Computer Science
  • at National University of Computer and Emerging Sciences
  • June 2019

Specialties & Skills

Policies and Procedures
+Endorse 0
Risk Assessment
+Endorse 0
IT Audit
+Endorse 0
PCI DSS
+Endorse 0
ISO 27001
+Endorse 0
IT Security Risk Management
+Endorse 0
Internal Audit
+Endorse 0
Policy& Process Development
+Endorse 0
SOC
+Endorse 0
RFI/RFP
+Endorse 0
Vendor Due diligence
+Endorse 0
IT Security Frameworks
+Endorse 0
ISO27001
+Endorse 0
Change Managment
+Endorse 0
MANAGEMENT
+Endorse 0
Internal Security Controls
+Endorse 0
PCI DSS
+Endorse 0
Information security awareness
+Endorse 0
Project Management
+Endorse 0
IT Audit
+Endorse 0
ISO 27001
+Endorse 0
Information Security Management
+Endorse 0
IT Risk
+Endorse 0
SECURITY POLICIES
+Endorse 0

Social Profiles

Personal Website
Personal Website

URL removed due to policy violation. Please contact support for further information.

Languages

English
Intermediate

Training and Certifications

ISMS27001:2013 Lead Auditor (Training)
Training Institute:
International Register of Certificated Auditors
Date Attended:
January 2022

Hobbies

  • travelling